Malpedia Library

Click here to download all references as Bib-File.•

2020-08-27 ⋅ Checkpoint ⋅ Alex Ilgayev
An Old Bot’s Nasty New Tricks: Exploring Qbot’s Latest Attack Methods
QakBot

2020-08-26 ⋅ CISA ⋅ CISA, FBI, U.S. Cyber Command, U.S. Department of the Treasury
Alert (AA20-239A): FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks
FastCash

2020-08-26 ⋅ CISA ⋅ CISA
MAR-10301706-1.v1 - North Korean Remote Access Tool: ECCENTRICBANDWAGON
PSLogger

2020-08-26 ⋅ CISA ⋅ CISA
MAR-10301706-2.v1 - North Korean Remote Access Tool: VIVACIOUSGIFT
NACHOCHEESE

2020-08-26 ⋅ Lab52 ⋅ Jagaimo Kawaii
A twisted malware infection chain
Agent Tesla Loki Password Stealer (PWS)

2020-08-26 ⋅ Max Kersten's Blog ⋅ Max Kersten
ReZer0v4 loader
MASS Logger

2020-08-26 ⋅ Kaspersky Labs ⋅ Giampaolo Dedola
Transparent Tribe: Evolution analysis, part 2
AhMyth Crimson RAT Oblique RAT

2020-08-25 ⋅ Aqua Nautilus ⋅ Assaf Morag
Deep Analysis of TeamTNT Techniques Using Container Images to Attack
TeamTNT Tsunami XMRIG

2020-08-25 ⋅ KELA ⋅ Victoria Kivilevich
How Ransomware Gangs Find New Monetization Schemes and Evolve in Marketing
Avaddon Clop DarkSide DoppelPaymer Mailto Maze MedusaLocker Mespinoza Nefilim RagnarLocker REvil Sekhmet

2020-08-25 ⋅ BleepingComputer ⋅ Lawrence Abrams
Ryuk successor Conti Ransomware releases data leak site
Conti

2020-08-25 ⋅ ⋅ 360 Threat Intelligence Center ⋅ 360 Threat Intelligence Center
Darkhotel (APT-C-06) organized multiple attacks using the Thinmon backdoor framework to reveal the secrets
ThinMon

2020-08-24 ⋅ KELA ⋅ Victoria Kivilevich
Torum is Dead. Long Live CryptBB?

2020-08-24 ⋅ Kaspersky Labs ⋅ Ivan Kwiatkowski, Maher Yamout, Pierre Delcher
Lifting the veil on DeathStalker, a mercenary triumvirate
EVILNUM Janicab Evilnum

2020-08-24 ⋅ Group-IB ⋅ Oleg Skulkin
Cybercriminal greeners from Iran attack companies worldwide for financial gain
Dharma

2020-08-23 ⋅ FBI ⋅ FBI
AC-000129-TT: Chinese Government-Mandated Tax Software Contains Malware, Enabling Backdoor Access
GoldenSpy

2020-08-23 ⋅ Github (Insane-Forensics) ⋅ Insane-Forensics
Dispatches from Drovorub: Network Threat Hunting for Russia GRU GTsSS' Malware at Scale

2020-08-22 ⋅ KrabsOnSecurity ⋅ Mr. Krabs
BitRAT – The Latest in Copy-pasted Malware by Incompetent Developers
BitRAT

2020-08-21 ⋅ RiskIQ ⋅ Steve Ginty
Pinchy Spider: Ransomware Infrastructure Connected to Dark Web Marketplace
REvil

2020-08-21 ⋅ ⋅ Bundeskriminalamt ⋅ Bundeskriminalamt
Mögliche Cyberspionage mittels der Schadsoftware GOLDENSPY
GoldenSpy

2020-08-21 ⋅ Palo Alto Networks Unit 42 ⋅ Brad Duncan
Wireshark Tutorial: Decrypting HTTPS Traffic
Dridex